In cPanel & WHM version 11.40 and earlier, visitors who used
https to access a site that did not have SSL configured saw a connection error.
In cPanel & WHM version 11.42 and later, we modified Apache's configuration to properly use proxy subdomains with SSL:
- Proxy subdomain virtualhosts now handle SSL and non-SSL connections separately.
- Each proxy subdomain virtualhost explicitly binds to all of the IP addresses that are in use on a server.
- SSL virtualhost configurations—such as the
webmailproxy subdomains—use the cPanel service SSL certificate.
Due to these changes, Apache uses cPanel's service SSL certificate to secure websites that do not have an SSL certificate. Visitors to sites without an SSL certificate may see an SSL warning, because Apache used cPanel's service SSL certificate to secure the site.
How to bypass the use of proxy subdomains and the cPanel service SSL certificate
We do not recommend that you bypass your server's proxy subdomain configuration.
To prevent the use of the cPanel service SSL certificate for the
webmail subdomains, you must perform the following steps:
- Disable the Proxy subdomains setting in the Domains section of WHM's Tweak Settings interface (Home >> Server Configuration >> Tweak Settings).
- Use cPanel's Subdomains interface (Home >> Domain >> Subdomains) to manually create each service's subdomain (for example,
Redirect each service's subdomain to the appropriate secure URL and port as follows:
Service Subdomain Redirection cPanel
WHM Web Disk Webmail
When you navigate to
webmail.example.com, the server redirects you to
and uses the
example.com domain's SSL certificate to secure the connection.